Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0uxyXwDfVhoKW0rtp9Cdf8fbCRQ.roa
File:                     0uxyXwDfVhoKW0rtp9Cdf8fbCRQ.roa (raw, json)
Hash identifier:          ih32d34aRB3GdzA9oXFhXhtPfrjoBFa1ap5/XXH53p0=
Subject key identifier:   D2:EC:72:5F:00:DF:56:1A:0A:5B:4A:ED:A7:D0:9D:7F:C7:DB:09:14
Certificate issuer:       /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial:       018E770958D468F60AACEF255DAA112C84FE
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0uxyXwDfVhoKW0rtp9Cdf8fbCRQ.roa
Signing time:             Mon 25 Mar 2024 19:14:45 +0000
ROA not before:           Mon 25 Mar 2024 19:14:45 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     204916
IP address blocks:        45.142.210.0/24 maxlen: 24
                          45.151.139.0/24 maxlen: 24
                          83.171.240.0/22 maxlen: 22
                          83.171.240.0/24 maxlen: 24
                          83.171.242.0/24 maxlen: 24
                          83.171.243.0/24 maxlen: 24
                          84.54.36.0/24 maxlen: 24
                          93.183.80.0/22 maxlen: 22
                          95.215.109.0/24 maxlen: 24
                          2a06:d900::/29 maxlen: 29
                          2a09:401::/32 maxlen: 32
                          2a09:3500::/32 maxlen: 32
                          2a09:3505:6000::/36 maxlen: 36
                          2a09:3505:9000::/36 maxlen: 36
                          2a09:3505:b000::/36 maxlen: 36
                          2a09:3505:d000::/36 maxlen: 36
                          2a09:3506::/32 maxlen: 32
                          2a09:3800::/32 maxlen: 32
                          2a09:3801::/32 maxlen: 32
                          2a09:3802::/32 maxlen: 32
                          2a09:3804::/36 maxlen: 36
                          2a09:3804:1000::/36 maxlen: 36
                          2a09:3804:2000::/36 maxlen: 36
                          2a09:3804:3000::/36 maxlen: 36
                          2a09:3804:4000::/36 maxlen: 36
                          2a09:3804:5000::/36 maxlen: 36
                          2a09:3804:6000::/36 maxlen: 36
                          2a09:3804:8000::/36 maxlen: 36
                          2a09:3804:9000::/36 maxlen: 36
                          2a09:3804:a000::/36 maxlen: 36
                          2a09:3804:b000::/36 maxlen: 36
                          2a09:3804:c000::/36 maxlen: 36
                          2a09:3804:d000::/36 maxlen: 36
                          2a09:3804:e000::/36 maxlen: 36
                          2a09:3805::/32 maxlen: 32
                          2a09:3806::/32 maxlen: 32
                          2a09:3807::/32 maxlen: 32
                          2a09:3b00::/29 maxlen: 29
                          2a09:3d00::/29 maxlen: 36
                          2a09:4e01:3000::/36 maxlen: 36
                          2a09:4e01:4000::/36 maxlen: 36
                          2a09:4e01:5000::/36 maxlen: 36
                          2a09:4e01:9000::/36 maxlen: 36
                          2a09:4e01:a000::/36 maxlen: 36
                          2a09:4e03::/32 maxlen: 32
                          2a09:6f00::/32 maxlen: 32
                          2a09:6f01::/32 maxlen: 32
                          2a09:a4c7:6000::/36 maxlen: 36
                          2a09:b680::/29 maxlen: 36
                          2a09:bd80::/32 maxlen: 32
                          2a0a:4784::/32 maxlen: 32
                          2a0a:f200::/29 maxlen: 36
                          2a0b:b0c0::/32 maxlen: 32
                          2a0b:b0c1::/32 maxlen: 32
                          2a0b:b0c2::/32 maxlen: 32
                          2a0b:b0c3::/32 maxlen: 32
                          2a0b:b0c4::/32 maxlen: 32
                          2a0b:b0c5::/32 maxlen: 32
                          2a0b:b0c6::/32 maxlen: 32
                          2a0b:b0c7::/32 maxlen: 32
                          2a0c:2103::/32 maxlen: 32
                          2a0c:2104::/32 maxlen: 32
                          2a0c:2107::/36 maxlen: 36
                          2a0c:2107:6000::/36 maxlen: 36
                          2a0c:e8c0::/29 maxlen: 29
                          2a0d:5ec0::/29 maxlen: 36
                          2a0d:5ec5::/32 maxlen: 32
                          2a0d:8b03::/32 maxlen: 32
                          2a0d:8b04::/32 maxlen: 32
                          2a0d:8b07::/32 maxlen: 32
                          2a0f:cc80::/32 maxlen: 32
                          2a0f:cc81::/32 maxlen: 32
                          2a0f:cc87::/36 maxlen: 36
                          2a0f:cc87:9000::/36 maxlen: 36
                          2a10:c0c0::/29 maxlen: 32
                          2a10:c0c0::/32 maxlen: 32
                          2a10:c0c1::/32 maxlen: 32
                          2a10:c0c3::/32 maxlen: 32
                          2a10:c0c5::/32 maxlen: 32
                          2a10:c0c6::/32 maxlen: 32
                          2a10:c0c7:3000::/36 maxlen: 36
                          2a10:c0c7:5000::/36 maxlen: 36
                          2a10:c340::/29 maxlen: 36
                          2a11:200::/36 maxlen: 36
                          2a11:200:4000::/36 maxlen: 36
                          2a11:200:5000::/36 maxlen: 36
                          2a11:200:7000::/36 maxlen: 36
                          2a11:200:8000::/36 maxlen: 36
                          2a11:200:9000::/36 maxlen: 36
                          2a11:200:a000::/36 maxlen: 36
                          2a11:200:c000::/36 maxlen: 36
                          2a11:200:d000::/36 maxlen: 36
                          2a11:200:e000::/36 maxlen: 36
                          2a11:201::/32 maxlen: 32
                          2a11:202::/32 maxlen: 32
                          2a11:204::/32 maxlen: 32
                          2a11:205::/32 maxlen: 32
                          2a11:206::/32 maxlen: 32
                          2a11:207::/32 maxlen: 32
                          2a11:780::/29 maxlen: 36
                          2a11:782::/32 maxlen: 32
                          2a11:980::/29 maxlen: 29
                          2a11:a80::/29 maxlen: 29
                          2a11:a80::/32 maxlen: 32
                          2a11:a81::/32 maxlen: 32
                          2a11:a83::/32 maxlen: 32
                          2a11:a85::/32 maxlen: 32
                          2a11:a86::/32 maxlen: 32
                          2a11:b80::/29 maxlen: 36
                          2a11:c80::/29 maxlen: 36
                          2a11:c80:1000::/36 maxlen: 36
                          2a11:c80:2000::/36 maxlen: 36
                          2a11:c80:3000::/36 maxlen: 36
                          2a11:c80:4000::/36 maxlen: 36
                          2a11:c80:5000::/36 maxlen: 36
                          2a11:c80:6000::/36 maxlen: 36
                          2a11:c81::/32 maxlen: 32
                          2a11:e82::/32 maxlen: 32
                          2a11:e87:6000::/36 maxlen: 36
                          2a11:af01::/32 maxlen: 32
                          2a11:af02::/32 maxlen: 32
                          2a11:af04::/32 maxlen: 32
                          2a11:af06:a000::/36 maxlen: 36
                          2a12:7c00::/29 maxlen: 36
                          2a12:7c00:8000::/36 maxlen: 36

Validation:               Failed, certificate revoked on Tue 26 Mar 2024 12:08:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8e:77:09:58:d4:68:f6:0a:ac:ef:25:5d:aa:11:2c:84:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
        Validity
            Not Before: Mar 25 19:14:45 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=d2ec725f00df561a0a5b4aeda7d09d7fc7db0914
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:ab:16:9e:9a:1d:3b:b2:46:c3:69:74:3f:5e:
                    f0:aa:c2:cd:8b:9f:59:6b:11:59:29:89:e4:ea:c9:
                    37:ad:ee:4c:47:53:d4:e6:26:4a:80:14:62:d7:91:
                    bc:0e:f9:cc:2d:cc:74:db:46:1a:f0:0a:fa:17:b8:
                    b2:35:74:a8:d1:2d:4a:03:a3:ea:68:61:42:4c:1c:
                    6d:78:92:a3:79:0e:10:78:81:9e:cc:d9:8c:0c:da:
                    50:4b:75:7f:a9:30:8d:be:25:21:4f:5b:be:85:14:
                    8b:37:7d:3e:25:90:11:c0:7a:19:45:a0:bd:53:e3:
                    bf:60:1e:26:bd:6d:14:ea:a5:93:b9:be:f2:b3:b4:
                    cf:33:11:b2:0c:17:38:df:de:28:c0:ac:d1:ff:fd:
                    39:c6:90:2b:24:63:34:57:b2:b1:e1:3d:07:27:4e:
                    0a:f9:55:4e:bc:12:90:0c:8b:64:2f:d1:d9:78:da:
                    a5:78:e3:f9:27:07:fa:de:1e:42:c4:f6:a9:17:55:
                    74:8d:4e:72:e6:92:df:60:cd:cd:2c:6c:66:0f:4c:
                    dd:77:37:93:85:68:a9:f3:84:5b:fd:29:29:c1:f8:
                    ec:af:00:a6:18:ea:8b:5f:7c:9a:00:85:68:21:53:
                    d4:59:48:5e:a7:34:84:87:b1:c9:ab:02:5a:8c:5f:
                    04:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:EC:72:5F:00:DF:56:1A:0A:5B:4A:ED:A7:D0:9D:7F:C7:DB:09:14
            X509v3 Authority Key Identifier:
                keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/0uxyXwDfVhoKW0rtp9Cdf8fbCRQ.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.142.210.0/24
                  45.151.139.0/24
                  83.171.240.0/22
                  84.54.36.0/24
                  93.183.80.0/22
                  95.215.109.0/24
                IPv6:
                  2a06:d900::/29
                  2a09:401::/32
                  2a09:3500::/32
                  2a09:3505:6000::/36
                  2a09:3505:9000::/36
                  2a09:3505:b000::/36
                  2a09:3505:d000::/36
                  2a09:3506::/32
                  2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
                  2a09:3804::-2a09:3804:6fff:ffff:ffff:ffff:ffff:ffff
                  2a09:3804:8000::-2a09:3804:efff:ffff:ffff:ffff:ffff:ffff
                  2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
                  2a09:3b00::/29
                  2a09:3d00::/29
                  2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e03::/32
                  2a09:6f00::/31
                  2a09:a4c7:6000::/36
                  2a09:b680::/29
                  2a09:bd80::/32
                  2a0a:4784::/32
                  2a0a:f200::/29
                  2a0b:b0c0::/29
                  2a0c:2103::-2a0c:2104:ffff:ffff:ffff:ffff:ffff:ffff
                  2a0c:2107::/36
                  2a0c:2107:6000::/36
                  2a0c:e8c0::/29
                  2a0d:5ec0::/29
                  2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
                  2a0d:8b07::/32
                  2a0f:cc80::/31
                  2a0f:cc87::/36
                  2a0f:cc87:9000::/36
                  2a10:c0c0::/29
                  2a10:c340::/29
                  2a11:200::/36
                  2a11:200:4000::/35
                  2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
                  2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
                  2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
                  2a11:204::/30
                  2a11:780::/29
                  2a11:980::/29
                  2a11:a80::/29
                  2a11:b80::/29
                  2a11:c80::/29
                  2a11:e82::/32
                  2a11:e87:6000::/36
                  2a11:af01::-2a11:af02:ffff:ffff:ffff:ffff:ffff:ffff
                  2a11:af04::/32
                  2a11:af06:a000::/36
                  2a12:7c00::/29

    Signature Algorithm: sha256WithRSAEncryption
         6d:2a:4c:83:3e:b8:c7:f3:e8:12:88:28:19:bf:d1:7e:3f:6e:
         f8:1e:1f:5d:49:41:27:20:4b:de:1b:01:51:3b:4f:8f:a7:81:
         c7:ac:33:43:8b:90:45:94:fd:96:ed:6d:9b:5b:56:cc:7f:b7:
         7a:b5:8a:5e:cb:d3:9b:15:01:3d:31:ef:a3:9e:4d:50:e6:7a:
         0b:84:f0:ad:fb:21:5f:78:c4:c5:5d:37:07:b7:60:33:5b:cb:
         51:25:a4:a1:19:a7:85:01:85:a7:ce:98:0e:6b:a2:b0:7c:b2:
         93:5f:94:c9:b3:91:eb:77:c9:4d:db:69:86:52:c6:d2:92:bd:
         56:69:91:58:a7:39:3a:31:45:4a:48:3e:b5:8b:0b:4e:4d:a9:
         12:f7:bb:77:c2:12:69:63:6b:ee:45:e2:e9:21:8a:f1:62:14:
         78:36:64:fe:01:f3:03:e4:79:c3:b7:24:27:b2:bc:95:a5:df:
         2c:98:d3:b8:61:ef:a8:f2:f7:58:54:c2:84:6b:4b:35:fb:d0:
         83:16:e6:89:d8:a9:f2:1c:af:e0:93:a0:bc:cf:40:73:9b:ed:
         47:53:2d:86:dd:5a:d3:c6:0f:23:2a:01:14:0d:57:4b:96:a3:
         9d:47:a6:c5:b4:df:4a:ce:8b:41:cb:98:d4:43:f8:24:78:72:
         e4:61:5c:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org